I have a site with SEND_BROKEN_LINK_EMAILS = True in the settings, which means I get both legitimate 404s and also probes where the bot is being clever by putting the fake URL in the referer heading.
Today I got a series of 404 messages that were alarming because they were probing legitimate urls with parts of my application structure appended to the end. Something like http://mysite.com/actual/url/appname.modelname , with the name of an app and a model stuck on the end with a dot in between, just like you'd see in a python import statement. I can't think of any place in the public-facing site where the names of any models appear directly, let alone the name of an app. This makes me nervous. Has anyone seen anything like this before? I can't think of any immediate threat it could pose, but nevertheless this seems like a Bad Thing. Any words of wisdom? Thanks, Eric --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~----------~----~----~----~------~----~------~--~---
